Setup Reference Guide for KX-NS1000 to SBC interconnection · Setup Reference Guide for KX-NS1000...

Setup Reference Guide for KX-NS1000 to SBC intercon nection

Method of connection by "LAN interface only" i.e. SBC is placed behind the Perimeter Rout er / Fire-wall.

Panasonic IP-PBX (KX-NS1000 Version2 series), Media5 Session Border Controller (Mediatrix501 seri es SBC)

Version 1.0 (PSNJ) 1st.December 2012

Attention: The content of this document is made up by verification results. It is no guarantee .

Models Used during verification:

Panasonic IP-PBX KX-NS1000 (Ver2)

Media5s SBC Mediatrix501 (Firmware 5.35-M4)

Panasonic SIP Phone KX-UT series SIP telephones (Version 01.160)

Panasonic System Networks Co., Ltd.

2

Change history

Support PSN (Japan) Version

NO. CONTENTS OF REVISION

Checked by Checked by Author

Oonishi Ver. 1.0 First edition Dec,1, 2012

3

Table of Contents

Setup Reference Guide for IP-PBX to SBC interconnection .......................................1

Change history .........................................................................................................2

Table of Contents …………………….........................................................................3

Trademarks…………………………………………………………………………………4

1. Introduction and Objective ...................................................................................5

2. Approach to interconnection ................................................................................6

3. System configuration example .............................................................................7

3.1 Diagram of system configuration example ....................................................7

3.2 Settings .........................................................................................................7

3.3 Media5 SBC Configuration Sheet (LAN Interface only) ........................14

3.4 SBC Firmware Revision.............................................................................15

3.5 KX-NS1000 and UT-Extension Firmware Revision..................................15

4. Initial set-up of the KX-NS1000..........................................................................16

5. Procedure for Installing Remote SIP Phone (Remote V-UTEXT)................21

5.1 Procedure for Method 1 with KX-UT Series SIP Phones ....................21

5.2 Procedure for Method 2 with KX-UT Series SIP Phones ....................25

6. Initial setting of the SBC ....................................................................................32

6.1 In Preparation of Network ...........................................................................32

6.2 In Network Configurations (1) .....................................................................35

6.3 In Network Configurations (2) .....................................................................39

6.4 In SIP Server Setting ...................................................................................43

6.5 In SIP Switch Advanced ..............................................................................44

6.6 In SIP Advanced .........................................................................................45

7. Configure the router Port Forwarding ............................................................48

8. Operation............................................................................................................48

9. How to register the 3rd party SIP Phones……………………………….…....49

9.1 How to make the new SIP Extension (Example) ………………………..49

10. Configure the Remote Office SIP Extension Settings if required……….….53

10.1 Login and confirmation of info.................................................................53

10.2 In VoIP Setting ………………………………………………………………..54

11. Further Information and Configuration ............................................................... 56

12. Management .......................................................................................................57

12.1 Reset SEC to Factory Default .....................................................................57

12.2 SBC Configuration Backup........................................................................58

12.3 Restore Settings ……………………………………………………………….60

12.4 Reset the UT-SIP Phone to Factory default............................................61

12.5 Allow the access to web page on UT-SIP Phone..................................61

4

Table of Contents

13. Troubleshooting ..................................................................................................62

13.1 REGISTER Flood Attack .............................................................................62

13.2 One-way Voice or No Voice ........................................................................63

14. Appendix SBC Configuration Check Sheet (LAN Scenario) ...............................64

Trademarks

• Microsoft, Windows, Windows XP, Vista, 7 and Internet Explorer are either registered trademarks

or trademarks of Microsoft Corporation in the United States and/or other countries.

• All other trademarks identified herein are the property of their respective owners.

• Microsoft product screen shot(s) reprinted with permission from Microsoft Corporation.

5

1. Introduction

[Note]

The SIP remote extension(s) are registered to the V -UTEXT32 of NS1000 (Ver.2), it's not the

registration of V-SIPEXT32. We can register an UT-S IP extension as V-UTEXT32 through the

SBC by NS1000 Ver2. This Setup Reference Guide describes mainly using t he V-UTEXT32.

Objective:

A Session Border Controller is required to supplement existing IP-PBX functionality.

It will provide the means of establishing a simple remote office connection

(Allowing the use of remote SIP extensions of the IP-PBX without the need for a PPTP, IPSEC, GRE

or Hosted VPN Solution). **** Please Note: HTTPS/SSL is VPN Technology ****

This Setup Reference Guide describes the configuration to interconnect between the Panasonic

IP-PBX (KX-NS1000 Version2 series), the Media5 Session Border Controller (Mediatrix501 series

SBC), and remote SIP Extensions (Panasonic KX-UT series).

The items above are interconnected using SIP, TR069 (CWMP) and NTP protocol. The global IP

address (also known as public IP address) of the main office is used to interconnect them.

Results (confirmed operation):

1-1 Receiving and making a Call

Calls between extensions are possible. The Caller ID (internal phone number) is displayed on the

LCD screen of Panasonic UT-SIP Extension and SIP Extension.

Incoming calls from PBX trunk lines also display the Caller ID (according to system settings).

1-2 Conversation with G.722, G.711 and G.729

Use of the above codec is possible, providing PBX settings allow this. (e.g. KX-NS1000 (V-UTEXT)

settings)

1-3 Placing a call on-hold and retrieving a Call that is on-hold

These features are confirmed by KX-NS1000 control.

1-4 Transferring Call

The transferring of a Call to another destination is confirmed by KX-NS1000 control.

1-5 Call forwarding (V-UTEXT32 Registered)


* Note* This feature does not work as using registration of SIP extension(V-SIPEXT32).

Restriction on the use of standard SIP Extension (V-SIPEXT32).

6

Attention: The content of this document is made up by verification results. It is no guarantee.

2. Approach to Interconnection

(1) For the Panasonic IP-PBX, the Virtual UT SIP Extension (V-UTEXT32) is used to interconnect

the IP-PBX to a remote UT SIP extension (remote office) via the SBC. The SBC is placed

behind the main router in the head office. For this setting of the SBC, only the LAN (ET1)

interface is used. There is no physical connection to the WAN ports. All SIP traffic between the

IP-PBX and the internet is routed through the Mediatrix SBC.

(2) The SBC operates to ensure correct interconnection between the IP-PBX V-UTEXT32 virtual

circuit card and the Remote office UT SIP Extension.

The SBC provides the following functions:

- Remote office UT SIP extension address resolution and address translation within SIP

messages.

- Head office (any PBX extension) and the remote office (SIP telephone) can be seamlessly

connected by the use of an IP-PBX UT SIP extension.

- Little or no dependence on the setting of the Router of the Remote-Office.

(3) We recommend that you consider the bandwidth of Internet access in each country,

to change the priority of voice Codec G.729 the remote side.

7

3. System configuration example

3.1 Diagram of system configuration example

LAN1:192.168.0.1

LAN:192.168.10.254/24

UT-Extensions 301(Panasonic KX-UT series)

Router

HUB

HUB

Media5 SBC

KX-NS1000 Router

LAN1:192.168.0.254/24

Existing Router have to set Port forward settings added, to allow incoming traffic to the Media5 SBC and the NS 1000e.g.To SBC SIP(UDP) 15060 ----> 192.168.0.1

RTP(UDP) 35000 – 35999 ----> 192.168.0.1To PBX CWMP(HTTP) 7547 ----> 192.168.0.101

CWMP(HTTPS) 37547----> 192.168.0.101Data Download(HTTP) 7580 ----> 192.168.0.101Data Download(HTTPS) 37580 ----> 192.168.0.101NTP 123 ----> 192.168.0.101

Internet

Remote OfficeHead Office

Note:

Panasonic IP-PBX KX-NS1000 Ver2MPR: 192.168.0.101 (SIP)DSP: 192.168.0.102-105 (RTP)Netmask: 255.255.255.0DGW: 192.168.0.254SIP Ext Server: 192.168.0.101: 5060

WAN: 10.0.0.1/29 :15060

PBX Extension(s): UT-Extension: 201

[ Network Setting ]IP:192.168.10.1/24(DHCP)DGW:192.168.10.254

[ SIP Server by PBX ]Remote Site Settings by Web Maintenance Console (Web MC)*NoteDon’t access the UT-Extension configuration by web.

WAN Global IP address

Method of Connection by LAN Interface Only

Provided by ISP

IP address shown here in the range 10.0.0.X are for illustration only.

When applying actual address settings to equipment, these address must be changed to the Global IP address (provided by th e ISP).

Maintenance PC

When initial setting only

LAN1:192.168.0.1

LAN:192.168.10.254/24

UT-Extensions 301(Panasonic KX-UT series)

Router

HUB

HUB

Media5 SBC

KX-NS1000 Router

LAN1:192.168.0.254/24

Existing Router have to set Port forward settings added, to allow incoming traffic to the Media5 SBC and the NS 1000e.g.To SBC SIP(UDP) 15060 ----> 192.168.0.1

RTP(UDP) 35000 – 35999 ----> 192.168.0.1To PBX CWMP(HTTP) 7547 ----> 192.168.0.101

CWMP(HTTPS) 37547----> 192.168.0.101Data Download(HTTP) 7580 ----> 192.168.0.101Data Download(HTTPS) 37580 ----> 192.168.0.101NTP 123 ----> 192.168.0.101

Internet

Remote OfficeHead Office

Note:

Panasonic IP-PBX KX-NS1000 Ver2MPR: 192.168.0.101 (SIP)DSP: 192.168.0.102-105 (RTP)Netmask: 255.255.255.0DGW: 192.168.0.254SIP Ext Server: 192.168.0.101: 5060

WAN: 10.0.0.1/29 :15060

PBX Extension(s): UT-Extension: 201

[ Network Setting ]IP:192.168.10.1/24(DHCP)DGW:192.168.10.254

[ SIP Server by PBX ]Remote Site Settings by Web Maintenance Console (Web MC)*NoteDon’t access the UT-Extension configuration by web.

WAN Global IP address

Method of Connection by LAN Interface Only

Provided by ISP

IP address shown here in the range 10.0.0.X are for illustration only.

When applying actual address settings to equipment, these address must be changed to the Global IP address (provided by th e ISP).

Maintenance PC

When initial setting only

3.2 Settings:

This section describes the network address scheme. Refer to later sections regarding entry of these

and other settings.

3.2-1 SBC – Contents of Main Network Settings (Example)

Item Configuration

example

Description

SBC LAN IP address 192.168.0.1 Need Fixed LAN IP address

Subnet Mask 255.255.255.0 SBC LAN side subnet mask

Access type Manual Select the connection type

DNS Server IP Address 192.168.0.254 or

172.16.255.1

Router or Information offered by provider

(Change to Global IP)

DNS Server IP 2nd If required

Default Gateway IP Address 192.168.0.254 Existing Router LAN IP Address

Outside IP 10.0.0.1


Information offered by provider

assigned IP to SBC

SIP Server UDP port numbers 15060 Recommended that don't use 5060 of

default SIP port.

SIP Routing Through External

Firewall Media ports

35000 - 35999 Must match RTP Port-Forward settings of

main router.

8

3.2-2 Existing (Main) Router - Contents of Main Network Settings (Example)

Item Configuration example Description

WAN IP global IP address 10.0.0.1

(Change to global IP address)

Existing main router

WAN IP address of assigned to

the SBC.

WAN SIP port 15060 WAN SIP Port of assigned to

the Router.

LAN IP address 192.168.0.254 Existing main router

LAN IP address

3.2-3 Existing (Main) Router - Contents of Port forward Settings (Example)

Protocol Range of port number Destination Description

SIP 15060

(UDP)

192.168.0.1 Send SIP to SBC

(SBC LAN IP address)

RTP (Voice) 35000 – 35999(UDP)

(Range must match SBC)

192.168.0.1 Send RTP to SBC



CWMP(HTTP) 7547

(TCP)

192.168.0.101 Send CWMP to PBX

(PBX LAN IP address)

CWMP(HTTPS) 37547

(TCP)



SIP-MLT Data

Download(HTTP)

7580

(TCP)

192.168.0.101 Send Data to PBX


SIP-MLT Data

Download(HTTPS)

37580

(TCP)



NTP 123

(UDP)

192.168.0.101 Send NTP to PBX


3.2-4 IP-PBX (NS1000) - Contents of Main Network Settings (Example)

PBXs IP Address/Ports Settings


PBX MPR IP address 192.168.0.101 Example only (Fixed IP)

PBX DSP IP address 192.168.0.102 - 105 Example only (Fixed IP)

Net Mask 255.255.255.0 Example only

Gateway 192.168.0.254 Main Router IP address

DNS Settings

(Preferred DNS IP Address)

192.168.0.254 or

172.16.255.1

Main Router IP address or

Provider DNS


9

3.2-5 IP-PBX (NS1000) - Confirmation of current each [Port Number] on Site property (Example)

Port Number Item Configuration example Description

UDP Port No. for SIP Extension

Server

5060 Default (SIP Port Number)

NAT - CWMP Server IP

Address

7547 Default

CWMP (HTTPS) Port No. for

SIP-MLT

37547 Default

Data Transmission Protocol

(HTTP) Port No. for SIP-MLT

7580 Default

Data Transmission Protocol

(HTTPS) Port No. for SIP-MLT

37580 Default

10

3.2-6 IP-PBX (NS1000) - Configure the SIP Extension parameter on Site property (Example)

SIP Extension Item Configuration example Description

NAT - CWMP Server IP

Address

10.0.0.1


Default: empty


Assigned IP to SBC

NAT - CWMP Server

(HTTP) Port No.

7547 Default

NAT - CWMP Server (HTTPS)

Port No.

37547 Default

NAT - SIP-MLT Data Download

Server (HTTP) Port No.

7580 Default

NAT - SIP-MLT Data Download

Server (HTTPS) Port No.

37580 Default

NAT - SIP Proxy Server IP

Address

10.0.0.1


Default: empty


Assigned IP to SBC

NAT - SIP Proxy Server IP

Address

10.0.0.1


Default: empty


Assigned IP to SBC

NAT - SIP Proxy Server

Port No.

15060 Default

NAT - NTP Server IP

Address

10.0.0.1 Default: empty


Assigned IP to SBC

NAT - NTP Server Port No.

123 Default

NAT - Keep Alive Packet Type

Blank UDP Default

You can select REGISTER

Or None

NAT - Keep Alive Packet

Sending Interval Time (s)

20 Default: 20 (sec)

*Note 1

NAT - SIP Register Expire Time

(s)

20 Keep Alive Packet Type:

REGISTER only

*Note 1: This interval must be shorter than the NAT binding time of the router. The default value is

appropriate in most cases.

11

3.2-7 IP-PBX (NS1000) - Configure the Options of Recommended P2P Group (Example)

System options P2P Group

(2.9-Option 7)

Configuration example Description

Priority Voice 1 G729 Default: G729

Priority Voice 2 G711 Default: G711

Priority Voice 3 None Default: G722

3.2-8 IP-PBX (NS1000) - Configure the Group of P2P (Example)

P2P Group (3.10) Configuration example Description

P2p Group

P2P Group Name

Bandwidth Control

1

Empty

Disable

Default

Default: Empty

Default: Disable

P2p Group

P2P Group Name

Bandwidth Control

2

Remote Office

Enable

Default

Example

Default: Disable

3.2-9 IP-PBX (NS1000) - Contents of Remote UT Extension (SIP-MLT) Settings (Example)


[Port Property Main]

SIP Extension Number

Password

P2P Group

[Option tab]

Codec Priority

[Remote Place tab]

Phone Location

Protocol for Remote SIP-MLT

301

1234

2

*1st: G729A / 2nd:G711A/

3rd:G722Mu / *4th: G722

Remote

HTTPs

Example

Default

Default:1

*1st: G722 / 2nd:G711A/

3rd:G722Mu / *4th: G729A

Default: Local

Default: HTTP

[Port Property Main]

SIP Extension Number

Password

P2P Group

[Option tab]

Codec Priority

[Remote Place tab]

Phone Location

Protocol for Remote SIP-MLT

302

1234

2

*1st: G729A / 2nd:G711A/

3rd:G722Mu / *4th: G722

Remote

HTTPs

Example( If required)

Default

Default:1

*1st: G722 / 2nd:G711A/

3rd:G722Mu / *4th: G729A

Default: Local

Default: HTTP

12

3.2-10 Maintenance PC - Contents of Network Settings example (2) initial setting of the Mediatrix

SBC while temporarily change, and then (1) Connecting the PC to LAN.


PC IP address (1) DHCP

Example 192.168.0.31

(DHCP or fixed ; For fixed, confirm

usable IP address first)

PC IP address (2)

* Temporarily change

DHCP

Example 192.168.20.31

When SBC operational mode

changed. (DHCP or fixed)

PC IP address (3)

* Temporarily change

DHCP

Example 192.168.0.200

When connect to existing LAN for

Maintenance PC. (DHCP or fixed)

Subnet Mask 255.255.255.0

Gateway DHCP Unused (in Fixed IP)

DNS DHCP Unused (in Fixed IP)

13

3.2-11 Remote Office UT Extension - Contents of automatically downloaded settings by TR069.

(Example) * Note1: Unless specifically instructed to do so, please do not directly configure the

UT-SIP Phone via the web as this will interfere with the configuration settings delivered by the PBX.


UT SIP Phone: IP address DHCP(Example, 192.168.10.1)

UT SIP Phone: Netmask DHCP(Example, 255.255.255.0)

UT SIP Phone: Gateway DHCP(Example, 192.168.10.254)

Registrar Server Address 10.0.0.1


(Set Head office main router

WAN address of assigned to

the SBC.)

Registrar Server Port 15060 SBC SIP receiving port

Proxy Server Address 10.0.0.1


(Set Head office main router

WAN address of assigned to

the SBC.)

Proxy Server Port 15060 SBC SIP receiving port

SIP Service Domain 192.168.0.101:5060 Example

PBX SIP Server Domain

Need to add a :port number

SIP source port 25060 Source port for outgoing SIP

* Measures for SIP ALG

function in Remote router.

NAT Identity Keep Alive Interval 20 (second) Example (Default: 20)

NAT Identity Supports Rport Yes Example (Default: Yes)

SIP extension Number

Password

301

pass301

Example


Password

302

pass302

Example (if required)

3.2-12 Remote Office Existing Router - Contents of main network settings


WAN global IP address Fixed IP or It will provide different IP

from ISP every time.

Existing remote office router

WAN IP address.

LAN IP address 192.168.10.254 Existing remote office router

LAN IP address

3.2-13 Remote office router contents of port forward settings

It is not necessary to change any settings of the Router of the remote office when using a SIP

telephone with “Keep-Alive” capability.

(e.g.) Panasonic KX-UT series SIP Phones.

The UT series SIP Phone can send the Keep Alive messages to the SBC (Blank UDP packets).

14

3.3 Media5 SBC Configuration Sheet (Connection type : LAN Interface only)

Section Part Item Setting value Description

Home Active Profile Security Low Select

Configuration Network Config Operational mode LANSIParator Select and reboot

ET0 used as Outside Select

IP Address 192.168.0.1 SBC IP address

Subnet Mask 255.255.255.0

Access type Manual Select

DNS Server IP Address 192.168.0.254 Example

2nd (DNS Server Address) 172.16.255.1 If required

Default Gateway IP Address 192.168.0.254 Main Router LAN

Address

SIP Routing

Through Extern

Firewall

Media Ports 35000-35999 Must much RTP Port

forward setting of

main router

Outside IP


10.0.0.1 Existing main router

Mapped SBC IP

SIP Server Allow to Register Inside users All Select

Outside users All Select

Allow outgoing calls from All Select

Advanced Advanced SIP set Far End Nat Traversal (FENT) Select the check

Detect endpoints behind same NAT Clear the check

Authorized Users Method REGISTER

URI *

Direction Inbound

Allow Select the check

Authentication Select the check

Authentication User IDs *

Authorized Users Method INVITE

URI *@192.168.0.101

Direction Inbound



Advanced Authentication User IDs *

Reuse received nonces Clear the check

Allow RTP in reverse direction Select the check

Reuse port number with same session Select the check

Force Real Username on registration Select the check

Trusted Networks Check box Clear the check P-Asserted-ID

15

3.4 SBC Firmware Revision

Section Installed Firmware

Device Information 5.35-M4 or Later

3.5 KX-NS1000 and UT-Extension Firmware Revision

Section Installed Firmware

NS1000 PBX Version 2.00171 or Later

Version Information 01.160 or Later

16

4. Initial set-up of the NS1000

(Note) The SIP remote extension(s) are registered t o the V-UTEXT32 of NS1000 (Ver.2)

4.1 Start up software of web browser. (Internet Explorer Version 7 or later, Mozilla Firefox 6 or later)

4.2 Access the KX-NS1000 Web Maintenance Console page (using previously read IP address).

e.g. http://192.168.0.101/

4.3 Enter Username: INSTALLER, Password:1234 ---> Next, click on [Login].

4.4 Access to initial web page (HOME) and Click on [Setup].

17

4.5 Confirmation of Activation Key (To install if you need the Activation key.)

Click on [PBX Configuration] --> [1.Configuration] --> [1.Slot] and then click on [Activation Key]

4.6 Confirmation of “IP Phone Capacity and IP Proprietary Telephone Activation key

(In this case, IP Phone Capacity (ch):30 / IP proprietary Telephone/IP:0 (Note *1).

*Note *1): 30 IP-Extension can be installed to NS-1 000 without extra Activation Keys,

but for connecting IP Extension itself. User must p urchase IP-Telephones Activation Keys

when expand over 8 Telephones.

4.7 Confirm, then click [OK] to close page.

Install the IP Phone Capacity and IP Proprietary Te lephone Activation key if required.

18

4.8 Click on [PBX Configuration] --> [1.Configuration] --> [1.Slot] --> Move mouse over [Site Property]

4.9 Select [Main] menu.

4.10 Click on [Port Number], --> Confirmation of current parameter value

1. [UDP Port No. for SIP Extension Server]: 5060 (Default)

2. [CWMP (HTTP) Port No. for SIP-MLT]: 7547 (Default)

3. [CWMP (HTTPS) Port No. for SIP-MLT]: 37547 (Default)

4. [Data Transmission Protocol (HTTP) port No. for SIP-MLT]: 7580 (Default)

5. [Data Transmission Protocol (HTTPS) port No. for SIP-MLT]: 37580 (Default)

Note: These each parameter of PBX in LAN side are u sing default value in this example.

19

4.11 Configure SIP Extension into the IP-PBX (NS1000) for Remote SIP Extension.

Click on [SIP Extension] --> Edit the each parameters --> Click on [Apply], and [OK]

4.12 Click on [Apply] and [OK] to close page.

--> *) Perform System Reset for changes to take effect

[ Setting parameters assigned to Remote SIP-MLT ] ( Example)

NAT - CWMP Server IP Address : 10.0.0.1 (This is an example, Change to Global IP)

NAT - CWMP Server (HTTP) Port No. : 7547 (This is a default value.)

NAT - CWMP Server (HTTPS) Port No. : 37574 (This is a default value.)

NAT - SIP-MLT Data Download Server (HTTP) Port No.: 7580 (This is a default value.)

NAT - SIP-MLT Data Download Server (HTTPS) Port No: 37580 (This is a default value.)

NAT - SIP Proxy Server IP Address: 10.0.0.1 (This is an example, Change to Global IP)

NAT - SIP Proxy Server Port No.: 15060 (This is a default value.)

NAT - NTP Server IP Address: 10.0.0.1 (This is an example, Change to Global IP)

NAT - NTP Server Port No.: 123 (This is a default value.)

NAT - Keep Alive Packet Type: Blank UDP (This is a default value)

NAT - Keep Alive Packet Sending Interval Time (s): 20 (This is a default value)

NAT - SIP Register Expire Time (s):20 (This is a default value.)

20

4.13 Configure the P2P Group recommended settings. (Example)

*Note) We recommend that you consider the bandwidth of Internet access in each country,

to change the priority of voice Codec G729 the remote side.

Click on [2.System] --> [9.System Options] --> [Option7]

Configure each Priority Voice of P2P. --> Click on [Apply].

4.14 Click on [3.Group] --> [10.P2P Group]

Enter the P2P Group Name: Remote Office (Example)

Select [Enable] in the [Bandwidth Control] column for P2P Group that will be used

at a remote site

4.15 Click on [Apply] --> Click on [OK]

P2P Group Configuration

(Recommended settings)

Priority Voice 1: Select [G729]

Priority Voice 2: Select [G711]

Priority Voice 1: Select [None]

21

5. Procedure for Installing Remote SIP Phone (Remot e V-UTEXT32).

There are 2 methods to install UT-SIP Phones (V-UTEXT32) at same local site as PBX.

[ Method 1 ]

Connect the UT-SIP Phone to the PBX, register the UT-SIP Phone to the PBX, and then configure

remote V-UTEXT32 settings using Web Maintenance Console.

[ Method 2 ]

Configure the UT-SIP Phone remote settings using the Web user interface of the UT-SIP Phone. You

do not have to connect the UT-SIP Phone to the PBX when using this method.

* Note)

1. A KX-NS1000 can work with only one SBC. Also, multiple sites can share an SBC.

2. KX-UT series SIP Phones can communicate over a NAT (Network Address Translation)-enabled

network only when communicating via an SBC from the KX-NS1000 to which the KX-UT series SIP

Phones are registered.

3. When an SBC is in use, packets from P2P communication also go through the SBC. Therefore, the

number of maximum calls is limited according to the maximum number of calls of the SBC.

4. When installing KX-UT series SIP Phones at a remote site where the time zone is different, those

KX-UT series SIP Phones will not match the Daylight Saving Time, and Time Display of the remote

site. The KX-UT series SIP Phones will act according to the time setting of the KX-NS1000 to which

the SIP Phones are registered.

However, if the KX-UT series SIP Phones are registered to a V-SIPEXT card and if an NTP server is

specified by the SIP Phone, the Daylight Saving Time and Time Display match the KX-UT series SIP

Phone setting.

22

5.1 Procedure for Method 1 with KX-UT Series SIP Ph ones.

Configure the V-UTEXT32 card for KX-UT series SIP Phone registration.

* Note) This procedure differs according to the IP Terminal Registration Mode already set to your

KX-NS1000.For details about how to configure the V-UTEXT32 card in each mode, refer to

"Installation Manual 5.9.1 Registering IP Telephones".

5.1-1 Click on [PBX Configuration] --> [1.Configuration] --> [1.Slot] --> [Virtual] --> [V-UTEXT32]

5.1-2 Move the mouse pointer over the V-UTEXT32 card (Virtual UT Extension Card).

A menu will be shown under the mouse pointer. --> Click on [Port Property].

5.1-3 Select [2 (Example)] in the P2P Group column for each UT-SIP Phone that will be used

at a remote site.

23

5.1-4 Configure the [UT Codec Priority]

Click on [Option] tab

Select UT Codec Priority- 1st: G729A

Select UT Codec priority- 4th: G722

5.1-5 Configure the [Remote Place]

Click on [Remote Place] tab

Select [Remote] in the [Phone Location] column for SIP Phone that will be used at a remote site.

Select [HTTPs] in the [Protocol for Remote SIP-MLT] column for SIP Phone that will be used

at a remote site.

5.1-6 Click on [Apply]

5.1-7 Reboot the UT-SIP Phone by power reset or RESET command with the Phone manually.

The UT-SIP Phone will download Remote site settings automatically.

5.1-8 Please wait until UT-SIP Phone is received the Remote Extension configuration.

The UT-SIP Phone will download the Remote Configuration parameters.

The UT-SIP Phone will be shown on display as following message.

* Note)

Depending on the model of the existing Router, you may be able to connect to the PBX .

Connection error (90002)

Check server and set it.

24

5.1-9 After confirming remote connection to the PBX, re-pack the KX-UT series SIP Phone, and then

send it to the remote site. The UT-SIP Phone completed the settings.

When the KX-UT series SIP Phone is connected at the remote site, it should start normally.

If the KX-UT series SIP Phone cannot reboot normally, import the configuration file to

configure server information again using the Web user interface.

5.1-10 Unpack the UT-SIP Phone and connect it to the LAN.

The UT-SIP Phone will connect to the Head office PBX via SBC.

And, the UT-SIP Phone will be shown as following on display (Example).

5.1-11 Please check the Basic outgoing and incoming calls.

9 OCT 12:00 TUE

301

25

5.2 Procedure for Method 2 with KX-UT Series SIP Ph ones.

* Note)

Configure the SIP Phone remote settings using the Web user interface of the SIP Phone.

You do not have to connect the SIP Phone to the PBX when using this method.

5.2-1 Click on [PBX Configuration] --> [1.Configuration] --> [1.Slot] --> [Virtual] --> [V-UTEXT32]

5.2-2 Move the mouse pointer over the V-UTEXT32 card (Virtual UT Extension Card).

A menu will be shown under the mouse pointer. --> Click on [Port Property].

5.2-3 Select [2 (Example)] in the P2P Group column for each UT-SIP Phone that will be used

at a remote site.

26

5.2-4 Configure the [UT Codec Priority]

Click on [Option] tab

Select UT Codec Priority- 1st: G729A

Select UT Codec priority- 4th: G722

5.2-5 Configure the [Remote Place]

Click on [Remote Place] tab

Select [Remote] in the [Phone Location] column for SIP Phone that will be used at a remote site.

Select [HTTPs] in the [Protocol for Remote SIP-MLT] column for SIP Phone that will be used

at a remote site.


5.2-7 Save the System Data.

Click on [Save System Data ]

27

5.2-8 Have to make the [UT_ACS_HTTPS_01NS1000.cfg] file on using NS1000.

Note)* The [UT_ACS_HTTPS_01NS1000.cfg] is made at s ystem startup.

Therefore we have to reboot the NS-1000 only once, but we do not need this every time.

(Need when configure the [Setting parameters assign ed to Remote SIP-MLT] Site Property)

Click on [Maintenance] -->

Click on [System Control] --> [4.System Rest] --> [Backup] (Just in case) --> [OK] --> [OK]

5.2-9 Access the KX-NS1000 Web Maintenance Console page again, after the PBX re-starting.

5.2-10 Access the [Maintenance Page]

Click on [Utility] --> [2.File] --> [2.File Transfer PBX to PC]

5.2-11 Click on [Next Page] and Please find the [ACS_File].

28

5.2-12 Click on [UT_ACS_HTTPS_01NS1000.cfg] line.

5.2-13 Click on [Transfer]

5.2-14 Save as to in Maintenance's PC folder.

File Name: UT_ACS_HTTPS_01NS1000.cfg

5.2-15 Distribute to the PC to install this file.

5.2-16 The NS1000 completed for the settings of remote UT-SIP extension.

Next, we have to access to UT-SIP Phone web setting page.

5.2-17 Allow to access the UT SIP Phone’s web page

Enter [Setting] on UT-SIP Phone --> Enter [#], [5], [3], [4] --> Select [On] --> [Enter]

5.2-18 Confirm the assigned IP address for UT-SIP Phone.

Click on [Setting] on UT-SIP Phone --> Select [Information Display] --> [Enter]

--> Select [IP Address] 192.168.10.1 (Example) --> Enter [CANCEL] Key

Access the UT-SIP Phone web page.

http://192.168.10.1/ (Example)

5.2-19 [Operator Login]

Username: instoperatoruserid

Password: instpass

29

5.2-20 Click on [Maintenance] and then Click on [Browse…]

5.2-21 Find and Select the [UT_ACS_HTTPS_01NS1000.cfg] file

And Click on [Import]

5.2-22 Confirm [Complete]

You will now download the remote UT-SIP Phone (V-UTEXT32) configuration.

5.2-23 Register the UT-SIP Phone (V-UTEXT32) by NS1000 registration.

30

5.3 Registering IP Telephones

After the programming of the PBX and IP telephones is finished

(refer to "5.8 Assigning Networking Information to IP Telephones" in the Installation Manual), the IP

telephones must be registered to the PBX.

The procedure for registering IP telephones differs according to the IP terminal registration mode

specified during the Easy Setup Wizard. This setting can also be changed in the Site Property -

Main screen of the Web Maintenance Console (refer to "9.5.1 PBX Configuration - [1-1] Configuration

- Slot - Site Property - Main - Main - IP Terminal Registration Mode" in the PC Programming Manual).

Refer to the following table:

1.Full Automatic mode 2. Extension Input mode 3. Manual Mode

UT Series

(V-UTEXT32)

Yes No Yes

5.4 Full Automatic Mode

If networking settings have been completed, when IP-PTs or KX-UT series SIP Phones are connected

to the same network as the PBX, they will be registered automatically. No registration procedure is

required.

5.5 Extension Number Input Mode

For KX-UT Series SIP Phones

If networking settings have been completed, when KX-UT series SIP Phones are connected to the

same network as the PBX, they will be registered automatically as same as when they are registered

in Full Automatic mode. No registration procedure is required.

*Note)

UT series do not support “Extension Input Mode”, so even if you set registration mode to

“Extension Input Mode”, the way of registration is same as “Full Automatic Mode”.

Please refer “Full Automatic” explanation.

31

5.6 Manual Mode

5.6-1 Manual Mode (Example)

Select the Port Property – Virtual UT Extension --> Click on [Registration]

5.6-2 Select Extension Number for Registration (Example)

Click on [Next] --> [Next]

5.6-3 Please wait a [Registration Executing]

5.6-4 Confirm [Registration Completed] and click on [Close]

32

6. Initial setting of the Mediatrix SBC (Mediatrix 500 series)

6.1 In Preparation of Network

6.1-1 The SBC has a default IP address of 192.168.0.1, Subnet mask: 255.255.255.0

Connect the ET1 of SBC and maintenance PC Network directly.

The SBC’s DHCP server function is running with the SBC, it’s default setting.

In this document, the Network setting is described using obtain an IP configuration automatically.

As a matter of course you can use static IP address.

6.1-2 Confirmation of PC LAN settings to allow setup of Mediatrix SBC

[View Network Connections] Select the LAN in use.

I

6.1-3 [Local Area Connection Properties] – Right click and Select the [Properties].

33

6.1-4 Select [Internet Protocol (TCP/IP)] and Click on [Properties].

6.1-5 Confirmation of Network Properties and Click on [OK].

Enter IP Address and Subnet mask for My PC

Example Select the check box Obtain an IP address automatically Click to [OK] --> [Close]

34

6.1-6 Program start up [Command Prompt] (Start --> Accessories --> Command Prompt )

--> Enter ipconfig /all and to check the currently IP Address.

6.1-7 Enter [ping 192.168.0.1] then confirm the replying from the Mediatrix SBC.

35

6.2 In Network Configurations (1)

6.2-1 Access to Web Home and Click on [Log in]. Example http://192.168.0.1/

6.2-2 To Enter Network Password Username: admin / Password: admin (Default).

36

6.2-3 Access to initial web page (HOME) --> Click on [Network]

6.2-4 Temporarily will change the LAN IP Address or just confirm it.

You have to do in order of procedure if you need to set the 192.168.0.X segment.

You can skip this section if existing LAN segment is different for SBC default LAN segment

(192.168.0.X). To go to the section “5.3”, if it's IP address of existing LAN segment in use.

Example,

Existing LAN segment 192.168.1.XXX and set to SBC LAN IP address 192.168.1.X.,

You can set the SBC directly.

This is a setting limitation of SBC, because WAN and LAN can not set same segment

at the same time while setting.

[Note] Sample error message.

These are default setting value.

37

6.2-5 Edit the LAN IP Address and DHCP Server range

Example IP Address: 192.168.20.1 DHCP Server Range: From 192.168.20.31 to 192.168.20.61

6.2-6 The SBC automatically reboot, please wait a few minutes.

6.2-7 Configure the PC LAN IP address release and renew setting

In this case, you can see that the new IP Address is 192.168.20.31.

Edit the LAN IP Address,

DHCP Server Raange.

38

6.2-8 Access to web 192.168.20.1 in the temporally and click on [Log in].

6.2-9 Enter the User Name: admin / Password: admin (Default) then Click on [OK].

6.2-10 Click on [Click here to save permanently]

39

6.3 In Network Configurations (2)

6.3-1 Move mouse over [Home] and Select [Overview]

6.3-2 Select Active Profile: [Low] and Click on [Change]

6.3-3 Click on [Click here to save permanently] and then Click on [Network].

5.3-4 Confirmation of Active Profile: [Lo] and Click on [Network].

6.3-5 Select Operational mode: [LAN SIParator]

40

6.3-6 Network Configuration

[ET0 Settings]

-- Select the Access type: [Manual]

-- ET0 used as [outside] (Default) / IP Address: 192.168.0.1 / Subnet Mask: 255.255.255.0

[DNS Server]

-- IP Address: 172.16.255.1 Example, (Change to Global IP or Router IP)

[Default Gateway]

-- IP Address: 192.168.0.254 Example, (Change to Existing Router IP)

[SIP Routing Through Extern Firewall]

-- Media ports: 35000 - 35999 (Default)

-- Outside IP:10.0.0.1 (Change to Global IP).

Note) In this LAN SIParator mode, the SBC’s DHCP se rver does not function on SBC’s LAN.


6.3-8 Click on [Save & Reboot]

41

6.3-9 Rebooting, please wait…. (Need about 3 minutes)

6.3-10 Connect to SBC ET1(to ET4) and Maintenance PC for existing LAN segment.

[Note] Don't connect the ET0/WAN.

6.3-11 Configure the IP Address, execute the release and renew. (Example, dynamic addressing)

42

6.3-12 Enter the ping 192.168.0.1 on Command Prompt. ---> Confirmation of Reply.

6.3-13 Access to web using new IP address and login again.

Click on Configuration [Network]

And then confirmation of Operational mode: [LANSIParator]

And ET0 settings / DNS / Default Gateway / SIP Routing Trough Extern Firewall settings.

[ET0 Settings]

-- Select the Access type: [Manual]

-- ET0 used as [outside] (Default) / IP Address: 192.168.0.1 / Subnet Mask: 255.255.255.0

[DNS Server]

-- IP Address: 172.16.255.1 Example, (Change to Global IP or Router IP)

[Default Gateway]

-- IP Address: 192.168.0.254 Example, (Change to Existing Router IP)

[SIP Routing Through Extern Firewall]

-- Media ports: 35000 - 35999 (Default)

-- Outside IP:10.0.0.1 (Change to Global IP).

[Note] Need to factory-reset the SBC if you need to select the operational mode after once

select it.

43

6.4 In SIP Server Setting

6.4-1 Move Mouse over [Applications] --> and Select [SIP Server]

6.4-2 Select Allow to register

-1. Inside Users: [All] (Default)

-2. Outside Users: [All]

-3. Allow outgoing calls from: [All]

-4. Select the check box [and from others after authentication] (Default)



44

6.5 In SIP Switch Advanced

6.5-1 Move Mouse over [Applications] --> and Select [SIP Switch Advanced]

6.5-2 Enter the Authorized User. Example

Ext: 301/ SIP Address: [email protected]/ User ID: 301/ Password: pass301

Ext: 303/ SIP Address: [email protected]/ User ID: 302/ Password: pass302


.


45

6.6 In SIP Advanced

6.6-1 Move Mouse over [Applications] --> and Select [SIP Advanced]

6.6-2 Configuration of Advanced SIP Settings

-1 Select the check box [Far End Nat Traversal (FENT)]

-2 Clear the check box [Detect endpoints behind same NAT (for shortest media path)].

-3Enter the Authorized Users:

Method: REGISTER/URI: */Direction: inbound/Allow: Select the check box/

Authenticate: Select the check box / Authentication User IDs: *

Method: INVITE/URI: *@192.168.0.101/Direction: inbound/Allow: Select the check box

Authenticate: Select the check box / Authentication User IDs: *

-4 Clear the check box [Reuse received nonces]:

46

6.6-3 Configuration of SIP Proxy

Enter the SIP Server UDP port number: 15060 (Default: 5060)

[Note]:

Refer to section 10 for details regarding SIP Regis ter Flood attack, and explanation of why

SIP default WAN side port of 5060 is not chosen.

6.6-4 Configuration of Advanced and you can confirm the RTP port range in this page.

-1 Select the check box [Allow RTP in reverse direction]

-2 Select the check box [Reuse port numbers within same session]

-3 Select the check box [Force Real Username on registrations]

47

6.6-5 Configuration of Trusted networks

Clear the check box [Enable]



7. Configure the Router Port Forwarding

7.1 Existing (Main) Router - Contents of Port forward Settings (Example)


SIP 15060

(UDP)

192.168.0.1 Send SIP to SBC


RTP (Voice) 35000 – 35999(UDP)

(Range must match SBC)

192.168.0.1 Send RTP to SBC



CWMP(HTTP) 7547

(TCP)



CWMP(HTTPS) 37547

(TCP)



SIP-MLT Data

Download(HTTP)

7580

(TCP)



SIP-MLT Data

Download(HTTPS)

37580

(TCP)



NTP 123

(UDP)

192.168.0.101 Send NTP to PBX


48

8. Operation

Try the basic calls.

We confirm the following operation by settings in this Reference Guide.

8-1 Incoming Call and making Call

The Caller ID is displayed on the LCD screen of Panasonic UT-SIP Extension and SIP Extension.

8-2 Conversation with G.722 G.711 and G.729

The more than single codec is already set in KX-NS1000 (V-SIPEXT)

8-3 Holding Call and retrieving Call held


8-4 Transferring Call

The transferring Calls are confirmed by KX-NS1000 control.

8-5 Call forwarding (V-UTEXT32 Registered)


* Note* This feature does not work as using registration of SIP extension (V-SIPEXT32).

Restriction on the use of standard SIP Extension (V-SIPEXT32).

49

9. How to register 3rd party SIP Phones

Procedure for Installing Remote SIP Phone (Remote V -SIPEXT32) if required.

This PBX supports the use of 3rd party SIP Phones c onnected from a remote office over an IP

network through an SBC.

SIP Phones can be set up by simply connecting the P hones to the LAN at the remote office.

If the customer has needs, we can register the 3rd party SIP Phones.

For example, the Media5fone. They have to set a reg istration method of V-SIPEXT.

9.1 How to make the new SIP Extension (Example)

9.1-1 Configuration of the SIP Extension into the IP-PBX.

Click on [Virtual]

9.1-2 Click on [V-SIPEXT32]

9.1-3 Click on [Total number of cards] and Select: 1 example

50

9.1-4 Click on [OK].

9.1-5 Configuration of V-SIPEXT32 Virtual slot.

9.1-6 Move mouse over installed card and select [OUS]

9.1-7 Click on [OK].

51

9.1-8 Select [Port Property]

9.1-9 Edit the Extension Number and Password fields (click on them to enter data).

(Example, Extension Number: 301, Password: pass301) --> Click on [OK]

9.1-10 Select [INS]

Contents of PBX main SIP Extension settings


SIP Extension port 5060

(Default)

Does not change it

Need a System reset if setting

change


Password

301

pass301

Example


Password

302

pass302

Example (If required).

52

9.1-11 Save the System Data

Click on [Save System Data icon]

[Note]

If you networking settings to change you need "syst em reset" that click on [System Reset]

During system rebooting, the PBX cannot use.

The PBX preparation completed.

53

10. Configure the Remote Office SIP Extension Setti ngs if required only (Example).

(Here is described as sample for Panasonic KX-UT S IP Phone(KX-UT123)).

We have to configure the SIP terminal via web in case using registration of V-SIPEXT (SIP-SLT)

Connect the SIP-terminal to the LAN. The following explanation assumes the LAN supports DHCP.

(e.g. DHCP server has given the SIP terminal the address 192.168.10.1).

10.1 Login and confirmation of info.

10.1-1 On the telephone, press [Setting] --> Select the [Network Settings] --> Push [Enter]

--> Select the [Embedded web] --> Push [ENTER] --> Select [ON] --> Push [ENTER]

--> [Back] -->[ Back]. Or press [Setting] [#],[5],[3],[4] Select [On] Press [Enter]

10.1-2 Confirmation of current IP Address.

On the telephone, press [Setup] --> Select the [Information Display]

--> Push [ENTER] --> Select the [IP Address] confirmation IP Address example 192.168.10.1

10.1-3 Access the SIP Terminal’s web page (using previously read IP address).

e.g. http://192.168.10.1/ User Name: admin / Password: adminpass --> Click on [OK]

10.1-4 Confirmation of Version Information:

(Software version must be at or later than the version shown)

54

10.1-5 Confirm the Status of the Network: (DHCP has setup detail OK)

Click on [Network Status]

10.2 In VoIP Setting

10.2-1 Click on [VoIP].

10.2-2 Click on [Line 1]

55

10.2-3 Configure the SIP Settings (1 of 3)



10.2-6 Click on [Save]

10.2-7 Check the [Complete ] Message.

The configuration is completed!

SIP Settings [Line 1] (1of 3) Phone Number: 301 [SIP Server] Register Server Address: 10.0.0.1 Register Server Port: 15060 Proxy Server Address: 10.0.0.1 Proxy Server Port: 15060 Note: Replace 10.0.0.1 with the WAN address of Head office main router. Change to global IP address.

SIP Settings [Line 1] (2of 3) SIP Service Domain: 192.168.0.101:5060 It’s PBXs LAN IP Address and SIP Port Number SIP Source Port: 25060 Authentication ID: 301 Authentication Password: pass301

SIP Settings [Line 1] (3of 3) Keep Alive Interval: 15 (Seconds) Support Rport: Click on [Yes]

56

11. Further SBC Information and Configuration

All documents are available online on the Mediatrix Download Portal at

https://support.mediatrix.com/DownloadPlus/Download.asp.

Or on the web site at the following link

http://www.mediatrix.com/en/sessionbordercontroller Under the documentation tab.

57

12. Management

12.1 Reset SBC to Factory Defaults

If you wish to you can reset all settings to their original values, so your Mediatrix 500 Series unit is

setup the same way as when delivered from the factory.

1. Press and hold [SET] (1) pressed for 3 seconds, to enter setup mode.

2. Press [SEL] (2) repeatedly until ”RST” appears in the display.

3. Press [SET](1).

4. The question ”Clear all?” appears, and then ”no”.

5. Press [SEL](2) to choose ”YES”.

6. Press [SET](1).

58

12.2 SBC Configuration Backup

12.2-1 Move Mouse over [Configurations] and Select [Administration].

12.2-2 Enter the Password: 123456 and then Click on [Backup to file]. Example

12.2-3 Click on [Save]

59

12.2-4 Save As

Select the Save Folder and Enter the File name [settings.txt] Example(Default).

60

12.3 Restore Settings

12.3-1 Enter the Password: 123456(When saving) and then Click on [Browse…].

12.3-2 Choose file: settings.txt (Example) and then Click on [Open].

61

12.3-3 Click on [Go]

12.3-4 Rebooting, please wait… after the restore was successful.

12.4 Reset the UT-SIP Phone to Factory default.

Press [Settings] [#],[1],[3],[6] [Enter] --> Select [Yes] press [Enter]

12.5 Allow the access to web page on UT-SIP Phone.

Press [Settings] [#],[5],[3],[4] [Enter]

62

13. Troubleshooting

13.1 REGISTER Flood Attack

The Figure below shows a REGISTER Flood attack example.

The attack begins with OPTIONS message. Then, the attacker sends a great many REGISTER

messages. The source address changes irregularly.

The symptom of this type of attack is the PBX temporarily becomes un-responsive,

(It is very busy sending “404 Not Found” messages until the attacks over).

Countermeasure:.

Do not use the default port number for receiving SIP (port 5060). Use a different port number.

63

13.2 One-way Voice or No Voice

Symptom: One-way voice or no voice can occur after several calls.

Reason: The RTP ports are not set the Port forwarding settings in the Router.

Note: This setting should be applied on SBC port settings (see 3.2)

(Use 35000 to 35999).

It is also required that these ports should be port-forwarded to the SBC by the main Router.

(See section 3.2-3).

64

14. Appendix

14.1 SBC Configuration Check Sheet (LAN Scenario)

Configuration Network Config Operational mode LANSIParator Select and reboot

ET0 used as Outside

IP Address SBC LAN IP address

Subnet Mask SBC LAN Net Mask

Access type Manual

DNS Server IP Address DNS or Main Router IP

2nd (DNS server IP Address) If required

Default Gateway IP Address Main Router LAN IP

SIP Routing

Through Extern

Firewall

Media Ports

(Default 35000-35999)

Must much RTP Port forward

setting of main router

Outside IP Existing main router

Mapped SBCs IP

SIP Server Allow to Register Inside users All Select: All

Outside users All Select: All

Allow outgoing calls from All Select : All

Advanced Advanced SIP set Far End Nat Traversal (FENT) Select the check

Detect endpoints behind same NAT Clear the check

Authorized Users Method REGISTER

URI *

Direction Inbound Select: Inbound

Allow Clear the check

Authentication Clear the check


Authorized Users Method INVITE

URI *@PBX IP

Direction Inbound Select: Inbound




Advanced Reuse received nonces Clear the check

Allow RTP in reverse direction Select the check

Reuse port number with same session Select the check

Force Real Username on registration Select the check

Trusted Networks Check box Clear the check

Setup Reference Guide for KX-NS1000 to SBC interconnection · Setup Reference Guide for KX-NS1000...

Documents

Transcript of Setup Reference Guide for KX-NS1000 to SBC interconnection · Setup Reference Guide for KX-NS1000...